<html>
<head>
<link rel="shortcut icon" type="image/x-icon" href="favicon.ico"/>
<title>n0.lol</title>
<meta charset="utf-8">
<meta name="twitter:card" content="summary" /> 
<meta name="twitter:title" content="nnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnn" /> 
<meta name="twitter:description" content="nnnnnnnnnnnnnnnnnnnnnnnnnnn nnnnnnnnnnnnnnnnnnnnnnnnnnnn nnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnn nnnnnnnnnnnnnnnnnnnnnnnnnn nnnnnn nnnn" /> 
<meta name="twitter:image" content="https://n0.lol/n0.jpg" />
<style>
@font-face { font-family:"TopazPlus"; src: url(./topazplus500.ttf);}
      body { color: #dddddd;
             background-color: #0c0d10; 
             font-size: 16px;
             line-height: 16px;
             margin: 0 auto;
             padding: 1em 0 1em 0;
           }
       pre { font-family:"TopazPlus", "Lucida Console", monospace, Monaco; }
         a { color: #98f5ff; text-decoration: none; }
       iky { color: #74ee15; }
         y { color: #ffa298; }
        gy { color: #f5ff98; }
         w { color: #ffffff; }
        gr { color: #b5bd68; }
         r { color: #f22e2e; }
       pnk { color: #f4b6e5; }
        bb { color: #5cc2ca; }
       prp { color: #7a80a2; }
         l { color: #c5c8c6; }
        lg { color: #9de9a9; }
</style>
</head>
<body><center>
<div style="display: inline-block; text-align: left;"><pre>
                  <gy>         _______     _______     _______    </gy>
                  <gy>   ______\      \____\      \____\      \   </gy>
                  <gy>   \      \      \    \      \    \      \  </gy>
                  <gy>    \                                     \ </gy>
                  <gy>_____\                                     \</gy>
.<y>_________________<gy>\     \                                    /</gy> ________________</y>.
:<y>------------------<gy>\                                        X </gy>-----------------</y>:
|                 <gy>  \______________/\__________/\__________X  </gy>                 |
|                                                                              |
| Links: <a href="https://twitter.com/netspooky">Twitter</a> | <a href="https://github.com/netspooky">Github</a> | <a href="https://www.youtube.com/netspooky">YouTube</a> | <a href="https://twitch.tv/netspooky">Twitch</a> | <a href="https://www.tiktok.com/@netspooky">TikTok</a>                          |
|                                                                              |
| [ <a href="">Cheat Sheets</a> ] [ <a href="">Notes</a> ] [ <a href="">Random Scripts</a> ]                                |
|                                                                              |
| <y>-- <w>Recent Write Ups / Projects</w> ---------------------------------------------</y> |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/importsort">importsort: Group imports from multiple Windows Binaries</a> <pnk>[October 2021]</pnk>   |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/dissectors">dissectors: Random Wireshark Dissectors Repo</a> <pnk>[October 2021]</pnk>               |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/BGGP/tree/main/2021">Binary Golf Grand Prix 2021 Results</a> <pnk>[September 2021]</pnk>                      |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/golfclub/blob/master/windows/ns.bggp2021.asm">ns.bggp2021.asm - PE/PDF/JS Polyglot - 487 bytes</a> <pnk>[September 2021]</pnk>         |
|                                                                              |
| <gy>::</gy> <a href="/ebm/4.html">ELF Binary Mangling Part 4: Limit Break</a> <pnk>[July 2021]</pnk>                       |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/kimagure">Kimagure: Shellcode and TinyPE Generator (OSED)</a> <pnk>[June 2021]</pnk>               |
|                                                                              |
| <gy>::</gy> <a href="/bggp/2021/">Binary Golf Grand Prix 2021 Announcement</a> <pnk>[June 2021]</pnk>                      |
|                                                                              |
| <gy>::</gy> <a href="https://tmpout.sh/1/9.html">In-Memory Kernel Module Loading (tmp.0ut 1.9)</a> <pnk>[April 2021]</pnk>                |
|                                                                              |
| <gy>::</gy> <a href="/encmute/">Encoding Mutations: A Base64 Case Study</a> <pnk>[February 2021]</pnk>                   |
|                                                                              |
| <gy>::</gy> <a href="https://tmpout.sh/1/Linux.Precinct3.asm">Linux.Precinct3.asm</a> <pnk>[November 2020]</pnk>                                       |
|                                                                              |
| <gy>::</gy> <a href="https://www.youtube.com/watch?v=QwSudydjRXc">PCAP Scroller Script</a> <pnk>[September 2020]</pnk>                                     |
|                                                                              |
| <gy>::</gy> <a href="/bggp/writeup.html">Palindromic 64 bit ELF binaries (BGGP Entry)</a> <pnk>[August 2020]</pnk>                |
|                                                                              |
| <gy>::</gy> <a href="https://www.youtube.com/watch?v=gDZoHorF42E">Hella Booters Talk (Defcon 28 IoT Village)</a> <pnk>[August 2020]</pnk>                  |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/pdiff">pDiff - Binary Protocol Differ</a> <pnk>[June 2020]</pnk>                                |
|                                                                              |
| <gy>::</gy> <a href="/bggp/">Binary Golf Grand Prix Challenge Announcement</a> <pnk>[June 2020]</pnk>                 |
|                                                                              |
| <y>-- <w>Past Write Ups</w> ----------------------------------------------------------</y> |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/golfclub/blob/master/linux/dl_memfd_219.asm">golfclub: memfd_create and execve file (219 Bytes)</a> <pnk>[May 2020]</pnk>             |
|                                                                              |
| <gy>::</gy> <a href="https://www.youtube.com/watch?v=VLmrsfSE-tA&list=PLmNyhM4m-pUq8eZqs0pkj0xMbMY7KxEMY&index=10">AirGap2020 Conference: Adventures in Binary Golf</a> <pnk>[May 2020]</pnk>               |
|                                                                              |
| <gy>::</gy> <a href="/a/miraiexotic.html">Exotic Mirai Targets</a> <pnk>[April 2020]</pnk>                                         |
|                                                                              |
| <gy>::</gy> <a href="/a/pemangle.html">Modern PE Mangling</a> <pnk>[March 2020]</pnk>                                           |
|                                                                              |
| <gy>::</gy> <a href="/i2fa/">Intro to Firmware Analysis Talk (PancakesCon2020)</a> <pnk>[March 2020]</pnk>            |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/golfclub/blob/master/linux/bmpoly147.asm">golfclub: Polymorphic ELF - execve('/bin/sh'); (147 Bytes)</a> <pnk>[January 2020]</pnk> |
|                                                                              |
| <gy>::</gy> <a href="https://www.twitch.tv/videos/491125786">Intro to Assembly Optimization Stream</a> and <a href="https://github.com/netspooky/i2ao">Repo</a><pnk> [October 2019]</pnk>             |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/threatland/TL-BOTS">TL-BOTS: A collection of source code for various botnets.</a> <pnk>[October 2019]</pnk>  |
|                                                                              |
| <gy>::</gy> <a href="https://medium.com/@dmxinajeansuit/what-to-do-when-an-elder-gets-scammed-93c052940fc3">Guide: What to do when an elder gets scammed</a> <pnk>[October 2019]</pnk>               |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/inhale">Inhale - A malware analysis and classification tool.</a> <pnk>[September 2019]</pnk>     |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/threatland/TL-TROJAN">TL-TROJAN: A collection of source code for various RATs, Stealers, and</a>    |
|    <a href="https://github.com/threatland/TL-TROJAN">other Trojans.</a> <pnk>[August 2019]</pnk>                                              |
|                                                                              |
| <gy>::</gy> <a href="https://n0.lol/a/ciscosmi.html">Still Tippin': Cisco SMI Attacks</a> <pnk>[August 2019]</pnk>                            |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/threatland/TL-FRAUD">TL-FRAUD: A collection of fraud related tools for research.</a> <pnk>[August 2019]</pnk> |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/jLoot">jLoot - JIRA Secure Attachment Looter</a> <pnk>[July 2019]</pnk>                         |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/golfclub">golfclub - Binary Golf Experiments</a> <pnk>[June 2019]</pnk>                            |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/reversi">Reversi - Anti-debug Reverse Shell Binary Generator</a> <pnk>[February 2019]</pnk>       |
|                                                                              |
| <gy>::</gy> <a href="https://github.com/netspooky/gtfoplus">GTFOPlus - Linux Privesc Vector Explorer</a> <pnk>[October 2018]</pnk>                   |
|                                                                              |
| <gy>::</gy> <a href="https://medium.com/@dmxinajeansuit/unauthenticated-hp-aruba-networks-switches-219be815dab5">HP/Aruba Network - Unauthenticated Devices</a> <pnk>[Medium]</pnk>                       |
|                                                                              |
| <gy>::</gy> Elf Binary Mangling - Parts <a href="ebm/1.html">1</a> | <a href="ebm/2.html">2</a> | <a href="ebm/3.html">3</a> <pnk>[Medium]</pnk>                            |
|                                                                              |
| <gy>::</gy> <a href="https://n0.lol/a/snapcodes.html">Snapchat Snapcode Browser Sandbox Escape</a> <pnk>[October 2017]</pnk>                   |
|                                                                              |
| <gy>::</gy> <a href="https://n0.lol/a/sierra.html">Sierra Wireless Airlink Unauthenticated DNS Hijack/DDoS</a> <pnk>[March 2017]</pnk>      |
|                                                                              |
| <gy>::</gy> <a href="https://n0.lol/a/veederroot.html">Veeder Root Remote Admin Vulnerability</a> <pnk>[October 2016]</pnk>                     |
|                                                                              |
| <y>-- <w>Past Challenges</w> ---------------------------------------------------------</y> |
|                                                                              |
| <gy>::</gy> <a href="https://thugcrowd.com/notes/20200520.html">AirGap2020 CTF Challenges</a> <pnk>[CTF - May 2020]</pnk>                                |
|                                                                              |
| <gy>::</gy> <a href="https://www.youtube.com/watch?v=AYb3eekNmyk">spiderman frozen elsa</a> <pnk>[Chat Challenge - October 2019]</pnk>                     |
|                                                                              |
| <gy>::</gy> <a href="https://www.dianainitiative.org/">Diana Initiative 2019 Binary RE Challenges</a> <r>(Waiting for writeups)</r>         |
|                                                                              |
| <gy>::</gy> <a href="https://twitter.com/thugcrowd/status/1153811494838030338">sigtrappin</a> <pnk>[Chat Challenge - July 2019]</pnk>                                   |
|                                                                              |
| <gy>::</gy> <a href="https://twitter.com/thugcrowd/status/1119665001688653824">shaolin</a> <pnk>[Chat Challenge - April 2019]</pnk>                                     |
|                                                                              |
| <gy>::</gy> <a href="https://twitter.com/thugcrowd/status/1113138128754225158">ringu</a> <pnk>[Chat Challenge - April 2019]</pnk>                                       |
|                                                                              |
| <gy>::</gy> <a href="https://www.twitch.tv/videos/332624318">twitch2shell</a> <pnk>[Charity Event - November 2018]</pnk>                              |
|                                                                              |
| <gy>::</gy> <a href="https://thugcrowd.com/chal/badge.gif">badge.gif</a> <pnk>[Defcon - July 2018]</pnk>                                            |
|                                                                              |
| <gy>::</gy> <a href="https://thugcrowd.com/chal/badge.html">skull</a> <pnk>[Defcon - August 2018]</pnk>                                              |
|                                                                              |
| <gy>::</gy> <a href="http://2thi.cc/emo.html">emo</a> <pnk>[Promo - July 2017]</pnk>                                                   |
|                  <gy>______     ____       _______        ____   _______</gy>         |
|           <gy>____  /     /____/    \     /      /  _____/    \ /      /</gy>         |
:<y>__________</y><gy>/    \/     /           \<y>___</y>/      /__/           /      /___</gy><y>_______</y>:
`<y>---------</y><gy>/                 /      /<y>--</y>/               /                /</gy><y>-------</y>'
         <gy>/     _______       _____/___\                _____          /</gy>
        <gy>X_____/       \_____/     /__/ \_______/\_____/     \________/ </gy> 
<gy></gy>
</pre>
</div>
</center>
</body>
</html>
